Home / Spyware Encyclopedia / IM.Pok << Back

Recommendation to Automatically remove IM.Pok


Our products can remove IM.Pok and thousands of other Virus and Spyware automatically and instantly.

IM.Pok Details


  • Category IM
  • Discovered 3/28/2011 3:08:31 PM
  • Modified 8/11/2023 3:36:01 PM
  • Threat Level Critical
  • Category Description
    A threat that is capable to cause Denial-Of-Service attacks against other instant messenger client systems.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
wtlbass32.dll 29184 1, 0, 0, 1f61f284644bddabd60d5387a80f77dce 
mtwirl.dll 16384  7c73f0634929a9656c73f6ba1ba17d14 
CSRSSW.EXE 29696  6c8d950cf6ae8df5c0087d59b852afb0 
CTFMONSS.EXE 29696  6c8d950cf6ae8df5c0087d59b852afb0 
Trojan-Dropper.Win32.Small.qv.exe 29696  6c8d950cf6ae8df5c0087d59b852afb0 
wtlbui.exe 3072  4e8c7b869cda72492df9f165ed081989 
mtwcnl32.dll 495    
mtwcnl32.dll 453    
mtwcnl32.dll 747    
winlogon32.exe 432640    

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"winlogon"\"%WIN.SYS32%\winlogon32.exe"
..\Software\Microsoft\Windows\CurrentVersion\URL\Prefixes\"www."\"http://"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"desktop"\"%WIN.SYS32%\desktop.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"nsdriver"\"%WIN.SYS32%\nssys32.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"desktop"\"%WIN.SYS32%\desktop.exe"
..\Software\Classes\Clsid\{FF986C12-B5C9-439A-839B-D8591CBC24D6}\(Default)
..\Software\Classes\Clsid\{FF593D78-92C8-484E-BCDA-51B5FBB52E98}\(Default)
..\Software\Classes\Clsid\{E3D2751B-7B67-4C6A-8A46-614714042CDE}\(Default)
..\Software\Classes\Clsid\{DACF72F8-AD3D-4556-853A-90B69C531628}\(Default)
..\Software\Classes\Clsid\{D8825110-0A81-43B5-BC1A-A6FE5270F364}\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.